Sunday 05 July 2026 22:46:42 GMT+02:00

Netcrook

HomeManifesto
News
Techcrook
Geocrook
WikicrookTeamAppContact
EnglishItalianoArabic

WIKICROOK

Spear-phishing

Targeted email attacks designed to trick a specific user into opening a malicious file or link.

Spear-phishing is a targeted email attack aimed at a specific person, team, or organization. Unlike broad spam, it is tailored to look relevant and trustworthy, often using a familiar sender, urgent language, or context tied to the victim’s role. The goal is usually to persuade the user to open a malicious attachment, click a harmful link, or hand over credentials.

In cyber security, spear-phishing matters because it turns human trust into an entry point. It is a common first step in malware delivery, account compromise, and ransomware intrusions. Attackers often hide payloads inside archives, documents, or login pages, then use the resulting access to stage loaders, steal tokens, or deploy stealers. Defenders look for unusual sender patterns, mismatched domains, archive-based attachments, and suspicious user actions such as extraction followed by new child processes. Security awareness training, email filtering, and behavior-based endpoint detection all help reduce its impact.

← WIKICROOK index